Skip to Content
author's profile photo Former Member
Former Member

SSL\TLS ciper suite for TLS_DH_RSA_WITH_AES_128_CBC_SHA

H all,

We need to sent HTTP request from SAP PI to 3-в party server using TLS_DH_RSA_WITH_AES_128_CBC_SHA alghoritm TLS\SSL. Does this alghoritm supported by standard SAP – or any partner solutions ?

Regards,

Ivan.

Add a comment
10|10000 characters needed characters exceeded

Assigned Tags

Related questions

3 Answers

  • author's profile photo Former Member
    Former Member
    Posted on Sep 25, 2013 at 07:12 AM

    Hi,

    Thank you all for your inputs - but one question. I found in SAP Securiy Guide:

    http://help.sap.com/saphelp_nw73ehp1/helpdata/en/14/29236de1864c6e8d46e77192adaa95/frameset.htm

    one sentense:

    The cipher suites for outbound SSL connections cannot be managed.

    Does it means that capabilities mentioned in note 1415576 - can help only when SAP PI / Netweaver acts as server - not client ?

    I found one helpful blog on SDN: http://scn.sap.com/community/b2b-integration/blog/2012/09/18/configure-the-httpaae-receiver-communication-channel-with-ssl

    But i do not found where to set needed alghorithm ?

    Regards,

    Ivan.


    Add a comment
    10|10000 characters needed characters exceeded

  • author's profile photo Former Member
    Former Member
    Posted on Sep 24, 2013 at 01:22 PM

    As far as I know, yes. SAP Cryptolib 555 pl28 and newer support cipher suites defined in RFC3268. See the attached links for details.

    https://service.sap.com/sap/support/notes/1415576

    http://www.ietf.org/rfc/rfc3268.txt

    Add a comment
    10|10000 characters needed characters exceeded

  • Posted on Sep 24, 2013 at 11:18 PM

    Hi,

    as Samuli said it's a fairly common suite so it should not be a problem. I just wanted to add that TLS_DHE_RSA_WITH_AES_128_CBC_SHA would be a better choice that provides perfect forward secrecy. But you can't control this.

    Cheers

    Add a comment
    10|10000 characters needed characters exceeded

Before answering

You should only submit an answer when you are proposing a solution to the poster's problem. If you want the poster to clarify the question or provide more information, please leave a comment instead, requesting additional details. When answering, please include specifics, such as step-by-step instructions, context for the solution, and links to useful resources. Also, please make sure that you answer complies with our Rules of Engagement.
You must be Logged in to submit an answer.

Up to 10 attachments (including images) can be used with a maximum of 1.0 MB each and 10.5 MB total.